Australia's Spam Act of 2003 prohibits the sending of unsolicited commercial electronic messages. The legislation covers all messages originating from Australia and all messages targeting an Australian address.
All emails must include contact information and clear identification of the sender. They must also include a functional unsubscribe facility, and the functionality must work for up to 30 days after the original message was sent. All requests must be honoured within 5 working days.
Emails can only be sent if the account holder (for example, the person who owns the email) has given permission. Permission can be given directly or, in limited circumstances, through implied consent.
- Express permission: when an individual agrees to receive your marketing. For example, a person may sign up to your mailing list.
- Inferred permission: you may be able to infer permission from an individual's conduct, business or other relationships. This is a broad definition but an example would be sending a message advertising your employment agency to the recruitment manager at a business, if their email has been published online (and you didn't scrape it!).
You cannot use harvested or scraped lists in Australia. Under the spam legislation, you can't use a list that has been created using a web scraper or sell email address scraping software.
Some organisations are exempt from the legislation. These include registered charities, educational institutions (only when sent to current or former students), government bodies and registered political parties. These messages must relate to goods or services offered by the exempt organisation.
The Australian Media and Communications Authority (ACMA) is responsible for enforcement. Penalties are according to Schedule 3 of the Spam Act and can be substantial – by way of example, a company sending 50 emails without consent could receive a fine of up to 330,000 AUD.